DNS 记录 DKIM email 签名与拆分 dns
[英]DNS records for DKIM email signing with split dns
问题描述
SO Gurus, As part of our on-prem exchange upgrade we are planning on implementing DKIM signing. 
SO Gurus,作为我们本地交换升级的一部分,我们计划实施 DKIM 签名。 We have a bit of a unique setup and need some DNS help.我们有一些独特的设置,需要一些 DNS 帮助。 Our internal domain is inside.maindomain.com and out external domain is maindomain.com.我们的内部域是 inside.maindomain.com,外部域是 maindomain.com。 Our internal DNS server is configured with a forward lookup zone for maindomain.com Our ISP has DNS records pointing MX to our internal exchange server and also Autodiscover.我们的内部 DNS 服务器配置了主域的正向查找区域。com 我们的 ISP 有 DNS 记录将 MX 指向我们的内部交换服务器和自动发现。 Everything is working as intended (has been for a long time) however there is confusion about where the DKIM TXT record with the key needs to be located.一切都按预期工作(已经有很长时间了),但是对于 DKIM TXT 记录与密钥的位置存在混淆。 If we put the record out at our ISP then our internal lookup does not find it;如果我们将记录放在我们的 ISP 上,那么我们的内部查找不会找到它; if we put it internally on our DNS server then the mail server sees it and the outside world does not.如果我们把它放在我们的 DNS 服务器内部,那么邮件服务器会看到它而外部世界看不到。 Do we need to put it in both places?我们需要把它放在两个地方吗? Or do we need some sort of A record pointing either out or in?或者我们是否需要某种 A 记录来指出或指出? Some guidance would be greatly appreciated.一些指导将不胜感激。
1 个解决方案
解决方案1
0 2021-06-05 11:37:53
Getting used to answering my own questions.... apparently the TXT record needs to exist both internally and externally.习惯于回答我自己的问题……显然,TXT 记录需要在内部和外部都存在。 DKIM, DMARC and SPF all flowing correctly now. DKIM、DMARC 和 SPF 现在都可以正常流动。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.